In [3]:
import requests
import pickle
import json
import os
import config
import re
import pyotp
from bs4 import BeautifulSoup
from config import ServerConfig
from config import AuthConfig


import classes
from contextlib import suppress
import general
from datetime import datetime
from playsound import playsound
from colorama import init, Back, Fore
from time import sleep

class Server:
    def __init__(self, name, url):
        self.name = name
        self.url = url
        self.header = None
        self.cookie = None
        self.events = []

    def __str__(self):
        return self.name
    
    ## This eq method allows the list index method to work based on the URL parameter of the class.
    ## Allows for shit like server = server_list[server_list.index("POV Server")] to be done.
    def __eq__(self, other):
        return self.name == other

        
## Initialize the server list
## Do this in MAIN! This is for reference only
"""
server_list = []
url_pattern = re.compile("^(http:\/\/|https:\/\/)+[a-z0-9]+([\-\.]{1}[a-z0-9]+)*\.[a-z]{2,5}(:[0-9]{1,5})?(\/.*)?(?<!\/)$")
for server in ServerConfig.server_list:
    if url_pattern.match(server[1]):
        server_list.append(Server(server[0], server[1]))
    else:
        if server[1].endswith("/"):
            raise Exception('Improper URL found (URL ends with slash). URL: {}'.format(server[1]))
        else:
            raise Exception('Improper URL found. URL: {}'.format(server[1]))
"""

session = requests.session()
connection_test_url = "/fapi/auth/verify"

def authenticate_with_username_password(server, username, password, totp = None, totp_secret = None):
    auth_session = requests.session()
    login = auth_session.get(server.url + '/login')
    csrf = BeautifulSoup(login.text, 'lxml').select_one('meta[name="csrf-token"]')['content']
    content = auth_session.get(server.url + '/fapi/auth/verify')
    cookies = auth_session.cookies.get_dict()
    headers = {
        'csrf-token': csrf,
        'Connection': 'keep-alive',
        'Content-Type': 'application/json',
        'Accept': 'application/x-www-form-urlencoded; charset=utf-8',
    }
    
    if not username_step(auth_session, headers, cookies, server, username):
        raise Exception("[ERROR]: Wrong Username for {}.".format(server.name))
        
    password_success = password_step(auth_session, headers, cookies, server, username, password)
    if password_step == 0:
        raise Exception("[ERROR]: Incorrect Password for {}.".format(server.name))
    elif password_success == 2:
        if totp_secret is not None:
            totp_secret = totp_secret.replace(" ", "")
            totp = pyotp.TOTP(totp_secret).now()
        if totp is not None:
            if not challenge_step(auth_session, headers, cookies, server, username, password, totp):
                raise Exception("[ERROR]: TOTP Challenge for {} Failed.".format(server.name))
        else:
            raise Exception("[ERROR]: No TOTP Token found for 2FA.")
    
    server.header = headers
    server.cookie = cookies
    
    if check_connection(server):
        header_path = "./auth/" + server.name + ".headerfile"
        _check_directory(header_path)
        with open(header_path, 'wb') as f:
            pickle.dump(headers, f)

        server.cookie = cookies
        cookie_path = "./auth/" + server.name + ".cookiejar"
        _check_directory(cookie_path)
        with open(cookie_path, 'wb') as f:
            pickle.dump(cookies, f)
        return True
    else:
        return False
    
    
def check_connection(server):
    session = requests.session()
    reply = session.get(server.url + "/fapi/auth/verify", headers=server.header, cookies=server.cookie)
    return reply.status_code == 200
    
    
def username_step(auth_session, headers, cookies, server, username):
    user_step_url = "/fapi/auth/v2/step/username"
    user_step_data = json.dumps({
        'username': username
    })
    auth_success = auth_session.post(server.url + user_step_url, headers=headers, cookies=cookies,
                                  data=user_step_data)
    return auth_success.text != '{"message":"Wrong username","type":"USER_NOT_FOUND"}'

    
def password_step(auth_session, headers, cookies, server, username, password):
    password_step_url = "/fapi/auth/v2/step/password"
    password_step_data = json.dumps({
        'username': username,
        'password': password
    })
    auth_success = auth_session.post(server.url + password_step_url, headers=headers, cookies=cookies,
                                  data=password_step_data)
    if auth_success.text == '{"message":"Incorrect password","type":"PASSWORD_INCORRECT"}':
        return 0
    elif '"use2fa":true' in auth_success.text:
        return 2
    else:
        return 1
    
    
def challenge_step(auth_session, headers, cookies, server, username, password, totp):
    challenge_step_url = "/fapi/auth/v2/step/challenge"
    challenge_step_data = json.dumps({
        'username': username,
        'password': password,
        'challenge': totp
    })
    auth_success = auth_session.post(server.url + challenge_step_url, headers=headers, cookies=cookies,
                                  data=challenge_step_data)
    return auth_success.text != '{"message":"Incorrect challenge code","type":"CHALLENGE_INCORRECT"}'


def _check_directory(filename):
    if not os.path.exists(os.path.dirname(filename)):
        try:
            os.makedirs(os.path.dirname(filename))
        except OSError as exc:  # Guard against race condition
            if exc.errno != errno.EEXIST:
                raise
                
                
def load_authentication(server):
    header_path = "./auth/" + server.name + ".headerfile"
    with open(header_path, 'rb') as f:
        server.header = pickle.load(f)

    cookie_path = "./auth/" + server.name + ".cookiejar"
    with open(cookie_path, 'rb') as f:
        server.cookie = pickle.load(f)
        
    return check_connection(server)


def logout(server):
    authentication = requests.session()
    return authentication.get(server.url + '/fapi/auth/logout', headers=server.header,
                              cookies=server.cookie).text == "{\"message\":\"Session terminated\"}"


ModuleNotFoundError: No module named 'classes'

In [2]:
def checkAllAlerts(serverList, userSettings):
    general.clear()
    for server in serverList:
        checkAlert(server, userSettings)

def checkAlert(server, userSettings):
    result = ""
    reply = classes.apiReply(server, openIncidents)
    if reply.status_code == 12345: # If a connection error is encountered
        print(Back.YELLOW + general.getTimestamp() + "Connection error to: " + server.name)
        if userSettings.disableConnection == False:
            notifyAnalyst(server, connectionError, userSettings)
            return
    elif not reply.result: # If there are no incidents found
        print(general.getTimestamp() + "No incidents found on " + server.name)
    else:
        for event in reply.events():
            if event.id not in server.events:
##                result += ("\033[0;32;41m" + general.getTimestamp() + "New alert detected on " + server.name + "\033[0;37;48m")
                print("\033[1;31;40m" + general.getTimestamp() + "New alert detected on " + server.name + "\033[0;37;48m")
                notifyAnalyst(server, alertDetected, userSettings)
                server.events.append(event.id)
                break
            elif userSettings.playOnce == False:
                notifyAnalyst(server, alertDetected, userSettings)
##                result += ("\033[0;32;41m" + general.getTimestamp() + "Alert detected on " + server.name + "\033[0;37;48m")
                print("\033[1;31;40m" + general.getTimestamp() + "Alert detected on " + server.name + "\033[0;37;48m")
                break
            else:
##                result += ("\033[0;32;47m" + general.getTimestamp() + "Alert detected on " + server.name + "\033[0;37;48m")
                print("\033[0;36;40m" + general.getTimestamp() + "Alert detected on " + server.name + "\033[0;37;48m")
                break
                #+ ": " + event.result['title']

    return result

True